RFR: 8263442: Potential bug in jdk.internal.net.http.common.Utils.CONTEXT_RESTRICTED [v3]

Daniel Fuchs dfuchs at openjdk.java.net
Tue Mar 23 11:09:41 UTC 2021


On Mon, 22 Mar 2021 22:13:12 GMT, Michael McMahon <michaelm at openjdk.org> wrote:

>> What I am seeing is that if no authenticator set, whether the fix is present or not, an "Authorization" header is passed through, but a "Proxy-Authorization" header is filtered. So, that is a different issue. It probably is a bug though.
>
> I've updated the test to test the proxy authorization case

Don't you need to set `-Djdk.http.auth.proxying.disabledSchemes=""` on the command line to have a chance that Proxy-Authorization will be forwarded?

-------------

PR: https://git.openjdk.java.net/jdk/pull/2977


More information about the net-dev mailing list